Detect with SDD: Onboarding Guide

Requirements:

• Immuta SaaS instance
• Snowflake Enterprise Edition or higher

Prerequisites

• Snowflake integration configured in Immuta with the following configuration:
  • Snowflake governance features
  • Native query audit enabled
• Users and Data Sources have been registered in Immuta:
  • Snowflake tables registered as Immuta data sources
  • Snowflake users registered in Immuta
• You have authenticated with the Immuta API.

Overview

This onboarding process is recommended for organizations that have not tagged any sensitive data yet. Immuta will identify, classify, and tag your data. After that, Detect is enabled and you will see information on your organization's data use.

The Immuta Detect onboarding process currently requires collaboration with your Immuta representative. As you complete the onboarding steps and configure features within the UI, your Immuta representative will enable features behind the scenes.

Workflow

1. Enable Sensitive Data Discovery (SDD): SDD will sample and tag your data based on the sensitive data detected. These tags are necessary for the framework tags in step 2 to be applied.

   If you already have legacy or native SDD enabled and customized to your data, contact your Immuta representative to turn on Classification, skip this step.

2. Activate the Immuta DSF: Once you activate the Immuta DSF, it will tag your data with classification tags. These classification tags contain the metadata required to assign your data sensitivity levels.

3. Adjust or accept the classification tags: After Immuta Detect has run SDD and the Immuta DSF, it may be necessary to adjust the output tags based on your organization's data, security, and compliance needs. Your Immuta representative will work with you during the preview to customize SDD and Immuta DSF to output the desired tags and classification of data sources.
4. Grant permissions: Grant the appropriate users the AUDIT permission to view Immuta Detect dashboards.
5. View Immuta Detect: Once all tags are correctly applied, the Detect dashboards will reflect accurate audit information. Navigate through Immuta Detect and explore the dashboards that visualize the sensitive data in your data environment.

Next steps

After you are happy with the Detect dashboards on the select data sources you enabled, you can integrate Detect with more of your data environment.

1. Enable SDD for all data sources: If you already had SDD enabled before starting Detect onboarding, skip this step. Once you are satisfied with the SDD tags and classification tags applied to your selected data sources, and the classification tags look correct, you should enable SDD for all data sources. This will add entity and classification tags to the rest of the data sources within your environment. You can choose to run SDD on all data sources, or run another payload with just a select few to gradually onboard the rest of your tables.
2. Enable historical audit: Enabling historical audit populates your Immuta Detect instance with your data platform activity history for all data sources and Immuta users. It will use the tags applied at the time it is enabled, so ensure the tags are correct before completing this step.